[143067] in North American Network Operators' Group
Re: Comcast Bussiness Class and GRE Tunnels
daemon@ATHENA.MIT.EDU (Denys Fedoryshchenko)
Wed Jul 27 05:32:26 2011
To: <nanog@nanog.org>
Date: Wed, 27 Jul 2011 12:30:36 +0300
From: Denys Fedoryshchenko <denys@visp.net.lb>
In-Reply-To: <20110727092333.GZ3135@hezmatt.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Wed, 27 Jul 2011 19:23:33 +1000, Matthew Palmer wrote:
> On Wed, Jul 27, 2011 at 12:17:16PM +0300, Denys Fedoryshchenko wrote:
>> I can recommend you to try to use openvpn, if you are "Mikrotik
>> only". At least it doesn't have fragmentation issues, as
>> IPIP/GRE/PPTP has, and also it will run smoothly over NAT/SPI. Cons,
>> that it is a bit more laggy, because it runs over TCP.
>
> Au contraire, OpenVPN only runs over TCP if you explicitly tell it
> to;
> default configuration, and widespread practice, is to run it over
> UDP.
>
> - Matt
On Linux, yes, it is by default configuration is UDP, but in current
case , on Mikrotik, it is working _only_ in TCP mode, and has few more
limitations.
http://forum.mikrotik.com/viewtopic.php?f=1&t=20537
---
System administrator
Denys Fedoryshchenko
Virtual ISP S.A.L.
